VIR Vulnerability Intelligence Relay

CVE-2014-1419

medium
Published 2014-07-24 · Modified 2026-05-06
CVSS v3
CVSS v2
6.9
VIR risk
6.9

Description

Race condition in the power policy functions in policy-funcs in acpi-support before 0.142 allows local users to gain privileges via unspecified vectors.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: security@ubuntu.com — http://www.ubuntu.com/usn/USN-2297-1

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2014-1419

OS impact
OSVersionStatusFixed in
debian debianbullseyefixed0.142-2
debian debianbookwormfixed0.142-2
debian debianforkyfixed0.142-2
debian debiansidfixed0.142-2
debian debiantrixiefixed0.142-2
ubuntu ubuntu12.04affected

Application impact
VendorProductVersionsFixed
canonicalacpi-support{"endIncluding":"0.141"}

References

CWEs

CWE-362

Verify integrity in audit chain (admin only). AS-IS.